How to remove bjql32.exe
bjql32.exe
The module bjql32.exe has been detected as Adware.LuDaShi
File Details
Product Name: | RunDll |
MD5: | 1b8271c3fdd7c20f6e2b8a5ec4f11d21 |
Size: | 307 KB |
First Published: | 2017-05-21 04:02:37 (7 years ago) |
Latest Published: | 2024-09-08 23:01:13 (3 months ago) |
Status: | Adware.LuDaShi (on last analysis) | |
Analysis Date: | 2024-09-08 23:01:13 (3 months ago) |
Overview
Signed By: | Qihoo 360 Software (Beijing) Company Limited |
Status: | Valid |
Common Places:
%programfiles%\ludashi\utils |
%programfiles%\ldslite\utils |
%programfiles%\ldsgamecenter\utils |
%programfiles%\ldsgamecenter\update |
%appdata%\360bizhi\utils |
%programfiles%\ludashi |
%programfiles%\ldslite |
%programfiles%\ldsgamecenter |
%programfiles%\ludashi\ludashi |
%profile%\dministrator\application data\360bizhi |
File Names:
RunDll.exe |
bjql32.exe |
bvay32.exe |
clpo32.exe |
ycmw32.exe |
dkct32.exe |
Geography:
37.8% | ||
27.5% | ||
10.4% | ||
4.7% | ||
3.9% | ||
2.1% | ||
1.6% | ||
1.3% | ||
1.3% | ||
1.0% | ||
1.0% | ||
1.0% | ||
1.0% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% |
OS Version:
Windows 10 | 73.6% | |
Windows 7 | 18.3% | |
Windows XP | 3.6% | |
Windows 8.1 | 2.6% | |
Windows Server 2008 R2 | 1.3% | |
Windows Embedded 8.1 | 0.3% | |
Windows 8 | 0.3% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x0001bef2 |
PE Sections:
Name | Size of data | MD5 |
.text | 255488 | 71669e2ac6ffdaabe31c6f3c1051cc0b |
.rdata | 34304 | 49fa47ac2435ac2980445990170576bb |
.data | 6656 | a0e64ad45b30b11fff7bceb7b095e6b1 |
.rsrc | 1536 | 7d3b4d0ab13d504455cbcfc64a7e7534 |
.reloc | 9728 | 6e6cf1aa007363d5dbc29674d7a476ab |
More information:
Download GridinSoft
Anti-Malware - Removal tool for bjql32.exe